Authentication of electronic data

ABSTRACT

Systems and techniques for transmitting electronic data by receiving, at a communications system host, electronic data transmitted from a sender and addressed to an intended recipient; authenticating the electronic data based on attributes of the electronic data and appending information to the electronic data indicating that the electronic data has been authenticated.

This application claims the benefit of U.S. Provisional Application No.60/210,027 filed Jun. 8, 2000, which is incorporated by reference.

TECHNICAL FIELD

The present invention relates generally to identification of an e-mailsender.

BACKGROUND

E-mail allows people to communicate with others around the world usingthe Internet. Unfortunately, the growth of the Internet has resulted ingrowth of the problem of “spam” or “junk” e-mail. Junk e-mail isunsolicited, unwelcome e-mail that is a problem facing every Internetuser. It is annoying, unwanted and can often be fraudulent or offensive.

Subscribers to online service providers are often targets of spammersand hackers who attempt to gain access to confidential informationincluding, for example, screen names, passwords, and credit cardinformation. One tactic employed by many spammers and hackers isimpersonating official personnel in order to trick the subscriber intoproviding confidential information.

SUMMARY

In one general aspect, electronic data is transmitted by receiving, at acommunications system host, electronic data transmitted from a senderand addressed to an intended recipient; authenticating the electronicdata based on attributes of the electronic data; and appendinginformation to the electronic data indicating that the electronic datahas been authenticated.

Implementations may include one or more of the following features. Forexample, the sender of the electronic data may be identified using, forexample, a screen name and/or an IP address. A level of securitycorresponding to the sender of the electronic data may be designated andwhether one attribute of the electronic data is an attribute of anauthorized sender may be verified. The attribute may be a screen nameand/or an IP address. Contents of the electronic data may be stored in afirst storage area of the communications system host and attributes ofthe electronic data may be stored in a second storage area of thecommunications system host.

The appended information may be presented to the intended recipient withattributes of the electronic data and/or contents of the electronicdata. The intended recipient may render the appended information as anicon and/or as a graphical user interface. The graphical user interfacemay include a border indicative of verification around the contents ofthe electronic data.

In another general aspect, electronic data are transmitted from a senderto an intended recipient through a communications system thatauthenticates the electronic data based on attributes of the electronicdata. In particular, information indicating that the electronic data hasbeen authenticated is received from a communications systems host, andinformation is rendered to the intended recipient so as to inform theintended recipient that the electronic data have been authenticated.

The intended recipient may be presented with the information as an iconand/or as a graphical user interface. The graphical user interface mayinclude a border indicative of verification around the contents of theelectronic data. The information may be rendered with contents of theelectronic data and/or attributes of the electronic data.

In another general aspect, a graphical user interface for renderinginformation associated with electronic data transmitted from a sender toan intended recipient includes a distinctive border around contents ofthe electronic data. The graphical user interface displays the border tothe intended recipient so as to inform the intended recipient that theelectronic data has been authenticated.

These and other general aspects may be implemented by an apparatusand/or a computer program stored on a computer readable medium. Thecomputer readable medium may be a disc, a client device, a host device,and/or a propagated signal.

Other features and advantages will be apparent from the followingdescription, including the drawings, and from the claims.

DESCRIPTION OF DRAWINGS

FIG. 1 is a block diagram of a communications system.

FIGS. 2-6 are block diagrams of expansions of aspects the block diagramof FIG. 1.

FIG. 7 is a flow chart of a communications method that may beimplemented by system of FIG. 1.

FIGS. 8-9B are illustrations of different graphical user interfaces thatmay be provided by the system of FIG. 1.

DETAILED DESCRIPTION

For illustrative purposes, FIGS. 1-5 describe a communications systemfor implementing techniques for transferring electronic data. Forbrevity, several elements in the figures described below are representedas monolithic entities. However, as would be understood by one skilledin the art, these elements each may include numerous interconnectedcomputers and components designed to perform a set of specifiedoperations and/or dedicated to a particular geographical region.

Referring to FIG. 1, a communications system 100 is capable ofdelivering and exchanging data between a client system 105 and a hostsystem 110 through a communications link 115. The client system 105typically includes one or more client devices 120 and/or clientcontrollers 125. For example, the client system 105 may include one ormore general-purpose computers (e.g., personal computers), one or morespecial-purpose computers (e.g., devices specifically programmed tocommunicate with each other and/or the host system 110), or acombination of one or more general-purpose computers and one or morespecial-purpose computers. The client system 105 may be arranged tooperate within or in concert with one or more other systems, such as forexample, one or more LANs (“Local Area Networks”) and/or one or moreWANs (“Wide Area Networks”).

The client device 120 is generally capable of executing instructionsunder the command of a client controller 125. The client device 120 isconnected to the client controller 125 by a wired or wireless datapathway 130 capable of delivering data.

The client device 120 and client controller 125 each typically includesone or more hardware components and/or software components. An exampleof a client device 120 is a general-purpose computer (e.g., a personalcomputer) capable of responding to and executing instructions in adefined manner. Other examples include a special-purpose computer, aworkstation, a server, a device, a component, other equipment or somecombination thereof capable of responding to and executing instructions.An example of client controller 125 is a software application loaded onthe client device 120 for commanding and directing communicationsenabled by the client device 120. Other examples include a program, apiece of code, an instruction, a device, a computer, a computer system,or a combination thereof, for independently or collectively instructingthe client device 120 to interact and operate as described herein. Theclient controller 125 may be embodied permanently or temporarily in anytype of machine, component, equipment, storage medium, or propagatedsignal capable of providing instructions to the client device 120.

The communications link 115 typically includes a delivery network 160making a direct or indirect communication between the client system 105and the host system 110, irrespective of physical separation. Examplesof a delivery network 160 include the Internet, the World Wide Web,WANs, LANs, analog or digital wired and wireless telephone networks(e.g. PSTN, ISDN, or xDSL), radio, television, cable, satellite, and/orany other delivery mechanism for carrying data. The communications link115 may include communication pathways 150, 155 that enablecommunications through the one or more delivery networks 160 describedabove. Each of the communication pathways 150, 155 may include, forexample, a wired, wireless, cable or satellite communication pathway.

The host system 110 includes a host device 135 capable of executinginstructions under the command and direction of a host controller 140.The host device 135 is connected to the host controller 140 by a wiredor wireless data pathway 145 capable of carrying and delivering data.

The host system 110 typically includes one or more host devices 135and/or host controllers 140. For example, the host system 110 mayinclude one or more general-purpose computers (e.g., personalcomputers), one or more special-purpose computers (e.g., devicesspecifically programmed to communicate with each other and/or the clientsystem 105), or a combination of one or more general-purpose computersand one or more special-purpose computers. The host system 110 may bearranged to operate within or in concert with one or more other systems,such as, for example, one or more LANs (“Local Area Networks”) and/orone or more WANs (“Wide Area Networks”).

The host device 135 and host controller 140 each typically includes oneor more hardware components and/or software components. An example of ahost device 135 is a general-purpose computer (e.g., a personalcomputer) capable of responding to and executing instructions in adefined manner. Other examples include a special-purpose computer, aworkstation, a server, a device, a component, other equipment or somecombination thereof capable of responding to and executing instructions.An example of host controller 140 is a software application loaded onthe host device 135 for commanding and directing communications enabledby the host device 135. Other examples include a program, a piece ofcode, an instruction, a device, a computer, a computer system, or acombination thereof, for independently or collectively instructing thehost device 135 to interact and operate as described herein. The hostcontroller 140 may be embodied permanently or temporarily in any type ofmachine, component, equipment, storage medium, or propagated signalcapable of providing instructions to the host device 135.

FIG. 2 illustrates a communication system 200 including a client system205 communicating with a host system 210 through a communications link215. Client system 205 typically includes one or more client devices 220and one or more client controllers 225 for controlling the clientdevices 220. Host system 210 typically includes one or more host devices235 and one or more host controllers 240 for controlling the hostdevices 235. The communications link 215 may include communicationpathways 250, 255 enabling communications through the one or moredelivery networks 260.

Examples of each element within the communication system of FIG. 2 arebroadly described above with respect to FIG. 1. In particular, the hostsystem 210 and communications link 215 typically have attributescomparable to those described with respect to host system 110 andcommunications link 115 of FIG. 1. Likewise, the client system 205 ofFIG. 2 typically has attributes comparable to and illustrates onepossible embodiment of the client system 105 of FIG. 1.

The client device 220 typically includes a general purpose computer 270having an internal or external storage 272 for storing data and programssuch as an operating system 274 (e.g., DOS, Windows™, Windows 95™,Windows 98™, Windows 2000™, Windows NTTM, OS/2, or Linux) and one ormore application programs. Examples of application programs includeauthoring applications 276 (e.g., word processing, database programs,spreadsheet programs, or graphics programs) capable of generatingdocuments or other electronic content; client applications 278 (e.g.,AOL client, CompuServe client, AIM client, AOL TV client, or ISP client)capable of communicating with other computer users, accessing variouscomputer resources, and viewing, creating, or otherwise manipulatingelectronic content; and browser applications 280 (e.g., Netscape'sNavigator or Microsoft's Internet Explorer) capable of renderingstandard Internet content.

The general-purpose computer 270 also includes a central processing unit282 (CPU) for executing instructions in response to commands from theclient controller 225. In one implementation, the client controller 225includes one or more of the application programs installed on theinternal or external storage 272 of the general-purpose computer 270. Inanother implementation, the client controller 225 includes applicationprograms externally stored in and performed by one or more device(s)external to the general-purpose computer 270.

The general-purpose computer typically will include a communicationdevice 284 for sending and receiving data. One example of thecommunication device 284 is a modem. Other examples include atransceiver, a set-top box, a communication card, a satellite dish, anantenna, or another network adapter capable of transmitting andreceiving data over the communications link 215 through a wired orwireless data pathway 250. The general-purpose computer 270 also mayinclude a TV (“television”) tuner 286 for receiving televisionprogramming in the form of broadcast, satellite, and/or cable TVsignals. As a result, the client device 220 can selectively and/orsimultaneously display network content received by communications device284 and television programming content received by the TV tuner 286.

The general-purpose computer 270 typically will include an input/outputinterface 288 for wired or wireless connection to various peripheraldevices 290. Examples of peripheral devices 290 include, but are notlimited to, a mouse 291, a mobile phone 292, a personal digitalassistant 293 (PDA), a keyboard 294, a display monitor 295 with orwithout a touch screen input, a TV remote control 296 for receivinginformation from and rendering information to subscribers, and anaudiovisual input device 298.

Although FIG. 2 illustrates devices such as a mobile telephone 292, aPDA 293, and a TV remote control 296 as being peripheral with respect tothe general-purpose computer 270, in another implementation, suchdevices may themselves include the functionality of the general-purposecomputer 270 and operate as the client device 220. For example, themobile phone 292 or the PDA 293 may include computing and networkingcapabilities and function as a client device 220 by accessing thedelivery network 260 and communicating with the host system 210.Furthermore, the client system 205 may include one, some or all of thecomponents and devices described above.

Referring to FIG. 3, a communications system 300 is capable ofdelivering and exchanging information between a client system 305 and ahost system 310 through a communication link 315. Client system 305typically includes one or more client devices 320 and one or more clientcontrollers 325 for controlling the client devices 320. Host system 310typically includes one or more host devices 335 and one or more hostcontrollers 340 for controlling the host devices 335. The communicationslink 315 may include communication pathways 350, 355 enablingcommunications through the one or more delivery networks 360.

Examples of each element within the communication system of FIG. 3 arebroadly described above with respect to FIGS. 1 and 2. In particular,the client system 305 and the communications link 315 typically haveattributes comparable to those described with respect to client systems105 and 205 and communications links 115 and 215 of FIGS. 1 and 2.Likewise, the host system 310 of FIG. 3 may have attributes comparableto and illustrates one possible embodiment of the host systems 110 and210 shown in FIGS. 1 and 2, respectively.

The host system 310 includes a host device 335 and a host controller340. The host controller 340 is generally capable of transmittinginstructions to any or all of the elements of the host device 335. Forexample, in one implementation, the host controller 340 includes one ormore software applications loaded on the host device 335. However, inother implementations, as described above, the host controller 340 mayinclude any of several other programs, machines, and devices operatingindependently or collectively to control the host device 335.

The host device 335 includes a login server 370 for enabling access bysubscribers and routing communications between the client system 305 andother elements of the host device 335. The host device 335 also includesvarious host complexes such as the depicted OSP (“Online ServiceProvider”) host complex 380 and IM (“Instant Messaging”) host complex390. To enable access to these host complexes by subscribers, the clientsystem 305 includes communication software, for example, an OSP clientapplication and an IM client application. The OSP and IM communicationsoftware applications are designed to facilitate the subscriber'sinteractions with the respective services and, in particular, mayprovide access to all the services available within the respective hostcomplexes.

Typically, the OSP host complex 380 supports different services, such asemail, discussion groups, chat, news services, and Internet access. TheOSP host complex 380 is generally designed with an architecture thatenables the machines within the OSP host complex 380 to communicate witheach other and employs certain protocols (i.e., standards, formats,conventions, rules, and structures) to transfer data. The OSP hostcomplex 380 ordinarily employs one or more OSP protocols and customdialing engines to enable access by selected client applications. TheOSP host complex 380 may define one or more specific protocols for eachservice based on a common, underlying proprietary protocol.

The IM host complex 390 is generally independent of the OSP host complex380, and supports instant messaging services irrespective of asubscriber's network or Internet access. Thus, the IM host complex 390allows subscribers to send and receive instant messages, whether or notthey have access to any particular ISP. The IM host complex 390 maysupport associated services, such as administrative matters,advertising, directory services, chat, and interest groups related tothe instant messaging. The IM host complex 390 has an architecture thatenables all of the machines within the IM host complex to communicatewith each other. To transfer data, the IM host complex 390 employs oneor more standard or exclusive IM protocols.

The host device 335 may include one or more gateways that connect andtherefore link complexes, such as the OSP host complex gateway 385 andthe IM host complex gateway 395. The OSP host complex gateway 385 andthe IM host complex 395 gateway may directly or indirectly link the OSPhost complex 380 with the IM host complex 390 through a wired orwireless pathway. Ordinarily, when used to facilitate a link betweencomplexes, the OSP host complex gateway 385 and the IM host complexgateway 395 are privy to information regarding the protocol typeanticipated by a destination complex, which enables any necessaryprotocol conversion to be performed incident to the transfer of datafrom one complex to another. For instance, the OSP host complex 380 andIM host complex 390 generally use different protocols such thattransferring data between the complexes requires protocol conversion byor at the request of the OSP host complex gateway 385 and/or the IM hostcomplex gateway 395.

Referring to FIG. 4, a communications system 400 is capable ofdelivering and exchanging information between a client system 405 and ahost system 410 through a communication link 415. Client system 405typically includes one or more client devices 420 and one or more clientcontrollers 425 for controlling the client devices 420. Host system 410typically includes one or more host devices 435 and one or more hostcontrollers 440 for controlling the host devices 435. The communicationslink 415 may include communication pathways 450, 455 enablingcommunications through the one or more delivery networks 460. As shown,the client system 405 may access the Internet 465 through the hostsystem 410.

Examples of each element within the communication system of FIG. 4 arebroadly described above with respect to FIGS. 1-3. In particular, theclient system 405 and the communications link 415 typically haveattributes comparable to those described with respect to client systems105, 205, and 305 and communications links 115, 215, and 315 of FIGS.1-3. Likewise, the host system 410 of FIG. 4 may have attributescomparable to and illustrates one possible embodiment of the hostsystems 110, 210, and 310 shown in FIGS. 1-3, respectively. However,FIG. 4 describes an aspect of the host system 410, focusing primarily onone particular implementation of OSP host complex 480. For purposes ofcommunicating with an OSP host complex 480, the delivery network 460 isgenerally a telephone network.

The client system 405 includes a client device 420 and a clientcontroller 425. The client controller 425 is generally capable ofestablishing a connection to the host system 410, including the OSP hostcomplex 480, the IM host complex 490 and/or the Internet 465. In oneimplementation, the client controller 425 includes an OSP applicationfor communicating with servers in the OSP host complex 480 usingexclusive OSP protocols. The client controller 425 also may includeapplications, such as an IM client application, and/or an Internetbrowser application, for communicating with the IM host complex 490 andthe Internet 465.

The host system 410 includes a host device 435 and a host controller440. The host controller 440 is generally capable of transmittinginstructions to any or all of the elements of the host device 435. Forexample, in one implementation, the host controller 440 includes one ormore software applications loaded on one or more elements of the hostdevice 435. However, in other implementations, as described above, thehost controller 440 may include any of several other programs, machines,and devices operating independently or collectively to control the hostdevice 435.

The host system 410 includes a login server 470 capable of enablingcommunications with and authorizing access by client systems 405 tovarious elements of the host system 410, including an OSP host complex480 and an IM host complex 490. The login server 470 may implement oneor more authorization procedures to enable simultaneous access to theOSP host complex 480 and the IM host complex 490. The OSP host complex480 and the IM host complex 490 are connected through one or more OSPhost complex gateways 485 and one or more IM host complex gateways 495.Each OSP host complex gateway 485 and IM host complex gateway 495 mayperform any protocol conversions necessary to enable communicationbetween the OSP host complex 480, the IM host complex 490, and theInternet 465.

The OSP host complex 480 supports a set of services from one or moreservers located internal to and external from the OSP host complex 480.Servers external to the OSP host complex 480 generally may be viewed asexisting on the Internet 465. Servers internal to the OSP complex 480may be arranged in one or more configurations. For example, servers maybe arranged in centralized or localized clusters in order to distributeservers and subscribers within the OSP host complex 480.

In the implementation of FIG. 4, the OSP host complex 480 includes arouting processor 4802. In general, the routing processor 4802 willexamine an address field of a data request, use a mapping table todetermine the appropriate destination for the data request, and directthe data request to the appropriate destination. In a packet-basedimplementation, the client system 405 may generate information requests,convert the requests into data packets, sequence the data packets,perform error checking and other packet-switching techniques, andtransmit the data packets to the routing processor 4802. Upon receivingdata packets from the client system 405, the routing processor 4802 maydirectly or indirectly route the data packets to a specified destinationwithin or outside of the OSP host complex 480. For example, in the eventthat a data request from the client system 405 can be satisfied locally,the routing processor 4802 may direct the data request to a local server4804. In the event that the data request cannot be satisfied locally,the routing processor 4802 may direct the data request externally to theInternet 465 or the IM host complex 490 through the gateway 485.

The OSP host complex 480 also includes a proxy server 4806 for directingdata requests and/or otherwise facilitating communication between theclient system 405 and the Internet 465 through. The proxy server 4802may include an IP (“Internet Protocol”) tunnel for converting data fromOSP protocol into standard Internet protocol and transmitting the datato the Internet 465. The IP tunnel also converts data received from theInternet in the standard Internet protocol back into the OSP protocoland sends the converted data to the routing processor 4802 for deliveryback to the client system 405.

The proxy server 4806 also may allow the client system 405 to usestandard Internet protocols and formatting to access the OSP hostcomplex 480 and the Internet 465. For example, the subscriber can use anOSP TV client application having an embedded browser applicationinstalled on the client system 405 to generate a request in standardInternet protocol, such as HTTP (“HyperText Transport Protocol”). In apacket-based implementation, data packets may be encapsulated inside astandard Internet tunneling protocol, such as, for example, UDP (“UserDatagram Protocol”) and routed to the proxy server 4806. The proxyserver 4806 may include a L2TP (“Layer Two Tunneling Protocol”) tunnelcapable of establishing a point-to-point protocol (PPP) session with theclient system 405.

The proxy server 4806 also may act as a buffer between the client system405 and the Internet 465, and may implement content filtering and timesaving techniques. For example, the proxy server 4806 can check parentalcontrols settings of the client system 405 and request and transmitcontent from the Internet 465 according to the parental controlsettings. In addition, the proxy server 4806 may include one or morecaches for storing frequently accessed information. If requested data isdetermined to be stored in the caches, the proxy server 4806 may sendthe information to the client system 405 from the caches and avoid theneed to access the Internet 465.

Referring to FIG. 5, a communications system 500 is capable ofdelivering and exchanging information between a client system 505 and ahost system 510 through a communication link 515. Client system 505typically includes one or more client devices 520 and one or more clientcontrollers 525 for controlling the client devices 520. Host system 510typically includes one or more host devices 535 and one or more hostcontrollers 540 for controlling the host devices 535. The communicationslink 515 may include communication pathways 550, 555 enablingcommunications through the one or more delivery networks 560. As shown,the client system 505 may access the Internet 565 through the hostsystem 510.

Examples of each element within the communication system of FIG. 5 arebroadly described above with respect to FIGS. 1-4. In particular, theclient system 505 and the communications link 515 typically haveattributes comparable to those described with respect to client systems105, 205, 305, and 405 and communications links 115, 215, 315, and 415of FIGS. 1-4. Likewise, the host system 510 of FIG. 5 may haveattributes comparable to and illustrates one possible embodiment of thehost systems 110, 210, 310, and 410 shown in FIGS. 1-4, respectively.However, FIG. 5 describes an aspect of the host system 510, focusingprimarily on one particular implementation of IM host complex 590. Forpurposes of communicating with the IM host complex 590, the deliverynetwork 560 is generally a telephone network.

The client system 505 includes a client device 520 and a clientcontroller 525. The client controller 525 is generally capable ofestablishing a connection to the host system 510, including the OSP hostcomplex 580, the IM host complex 590 and/or the Internet 565. In oneimplementation, the client controller 525 includes an IM application forcommunicating with servers in the IM host complex 590 utilizingexclusive IM protocols. The client controller 525 also may includeapplications, such as an OSP client application, and/or an Internetbrowser application for communicating with the OSP host complex 580 andthe Internet 565, respectively.

The host system 510 includes a host device 535 and a host controller540. The host controller 540 is generally capable of transmittinginstructions to any or all of the elements of the host device 535. Forexample, in one implementation, the host controller 540 includes one ormore software applications loaded on one or more elements of the hostdevice 535. However, in other implementations, as described above, thehost controller 540 may include any of several other programs, machines,and devices operating independently or collectively to control the hostdevice 535.

The host system 510 includes a login server 570 capable of enablingcommunications with and authorizing access by client systems 505 tovarious elements of the host system 510, including an OSP host complex580 and an IM host complex 590. The login server 570 may implement oneor more authorization procedures to enable simultaneous access to theOSP host complex 580 and the IM host complex 590. The OSP host complex580 and the IM host complex 590 are connected through one or more OSPhost complex gateways 585 and one or more IM host complex gateways 595.Each OSP host complex gateway 585 and IM host complex gateway 595 mayperform any protocol conversions necessary to enable communicationbetween the OSP host complex 580, the IM host complex 590, and theInternet 565.

To access the IM host complex 590 to begin an instant messaging session,the client system 505 establishes a connection to the login server 570.The login server 570 typically determines whether the particularsubscriber is authorized to access the IM host complex 590 by verifyinga subscriber identification and password. If the subscriber isauthorized to access the IM host complex 590, the login server 570employs a hashing technique on the subscriber's screen name to identifya particular IM server 5902 for use during the subscriber's session. Thelogin server 570 provides the client system 505 with the IP address ofthe particular IM server 5902, gives the client system 505 an encryptedkey (i.e., a cookie), and breaks the connection. The client system 505then uses the IP address to establish a connection to the particular IMserver 5902 through the communications link 515, and obtains access tothat IM server 5902 using the encrypted key. Typically, the clientsystem 505 will be equipped with a Winsock API (“Application ProgrammingInterface”) that enables the client system 505 to establish an open TCPconnection to the IM server 5902.

Once a connection to the IM server 5902 has been established, the clientsystem 505 may directly or indirectly transmit data to and accesscontent from the IM server 5902 and one or more associated domainservers 5904. The IM server 5902 supports the fundamental instantmessaging services and the domain servers 5904 may support associatedservices, such as, for example, administrative matters, directoryservices, chat and interest groups. In general, the purpose of thedomain servers 5904 is to lighten the load placed on the IM server 5902by assuming responsibility for some of the services within the IM hostcomplex 590. By accessing the IM server 5902 and/or the domain server5904, a subscriber can use the IM client application to view whetherparticular subscribers (“buddies”) are online, exchange instant messageswith particular subscribers, participate in group chat rooms, tradefiles such as pictures, invitations or documents, find other subscriberswith similar interests, get customized news and stock quotes, and searchthe Web.

In the implementation of FIG. 5, the IM server 5902 is directly orindirectly connected to a routing gateway 5906. The routing gateway 5906facilitates the connection between the IM server 5902 and one or morealert multiplexors 5908, for example, by serving as a link minimizationtool or hub to connect several IM servers to several alert multiplexors.In general, an alert multiplexor 5908 maintains a record of alerts andsubscribers registered to receive the alerts.

Once the client system 505 is connected to the alert multiplexor 5908, asubscriber can register for and/or receive one or more types of alerts.The connection pathway between the client system 505 and the alertmultiplexor 5908 is determined by employing another hashing technique atthe IM server 5902 to identify the particular alert multiplexor 5908 tobe used for the subscriber's session. Once the particular multiplexor5908 has been identified, the IM server 5902 provides the client system505 with the IP address of the particular alert multiplexor 5908 andgives the client system 505 an encrypted key (i.e., a cookie). Theclient system 505 then uses the IP address to connect to the particularalert multiplexor 5908 through the communication link 515 and obtainsaccess to the alert multiplexor 5908 using the encrypted key.

The alert multiplexor 5908 is connected to an alert gate 5910 that, likethe IM host complex gateway 595, is capable of performing the necessaryprotocol conversions to form a bridge to the OSP host complex 580. Thealert gate 5910 is the interface between the IM host complex 590 and thephysical servers, such as servers in the OSP host complex 580, wherestate changes are occurring. In general, the information regarding statechanges will be gathered and used by the IM host complex 590. However,the alert multiplexor 5908 also may communicate with the OSP hostcomplex 580 through the IM gateway 595, for example, to provide theservers and subscribers of the OSP host complex 580 with certaininformation gathered from the alert gate 5910.

The alert gate 5910 can detect an alert feed corresponding to aparticular type of alert. The alert gate 5910 may include a piece ofcode (alert receive code) capable of interacting with another piece ofcode (alert broadcast code) on the physical server where a state changeoccurs. In general, the alert receive code installed on the alert gate5910 instructs the alert broadcast code installed on the physical serverto send an alert feed to the alert gate 5910 upon the occurrence of aparticular state change. Upon detecting an alert feed, the alert gate5910 contacts the alert multiplexor 5908, which in turn, informs theclient system 505 of the detected alert feed.

In the implementation of FIG. 5, the IM host complex 590 also includes asubscriber profile server 5912 connected to a database 5914 for storinglarge amounts of subscriber profile data. The subscriber profile server5912 may be used to enter, retrieve, edit, manipulate, or otherwiseprocess subscriber profile data. In one implementation, a subscriber'sprofile data includes, for example, the subscriber's buddy list, alertpreferences, designated stocks, identified interests, and geographiclocation. The subscriber may enter, edit and/or delete profile datausing an installed IM client application on the client system 505 tointeract with the subscriber profile server 5912.

Because the subscriber's data is stored in the IM host complex 590, thesubscriber does not have to reenter or update such information in theevent that the subscriber accesses the IM host complex 590 using new ora different client system 505. Accordingly, when a subscriber accessesthe IM host complex 590, the IM server 5902 can instruct the subscriberprofile server 5912 to retrieve the subscriber's profile data from thedatabase 5914 and to provide, for example, the subscriber's buddy listto the IM server 5902 and the subscriber's alert preferences to thealert multiplexor 5908. The subscriber profile server 5912 also maycommunicate with other servers in the OSP host complex 590 to sharesubscriber profile data with other services. Alternatively, user profiledata may be saved locally on the client device 505.

Referring to FIG. 6, a communications system 600 is capable ofdelivering and exchanging information between a client system 605 and ahost system 610 through a communication link 615. Client system 605typically includes one or more client devices 620 and one or more clientcontrollers 625 for controlling the client devices 620. Host system 610typically includes one or more host devices 635 and one or more hostcontrollers 640 for controlling the host devices 635. The communicationlink may include communication pathways 650, 655 enabling communicationsthrough the one or more delivery networks 660. The network 660 may beany known or described delivery network including, but not limited, to atelephone network and/or the Internet.

Examples of each element within the communication system of FIG. 6 arebroadly described above with respect to FIGS. 1-5. In particular, theclient system 605 and the communications link 615 typically haveattributes comparable to those described with respect to client systems105, 205, 305, 405, and 505 and communications links 115, 215, 315, 415,and 515 of FIGS. 1-5. Likewise, the host system 610 of FIG. 6 may haveattributes comparable the host system 110, 210, 310, 410, and 510 shownin FIGS. 1-5 and may illustrate one possible implementation of thosesystems. FIG. 6 describes an aspect of the host system 610, focusingprimarily on one particular implementation of the host device 635.

The client system 605 includes a client device 620 and a clientcontroller 625. The client controller 625 is capable of establishing aconnection to the host system 610 through the delivery network 615. Inone implementation, the client controller 625 includes one or moreapplications, such as an IM application, an OSP application, and/or aninternet browser application.

The host system 610 includes a host device 635 and a host controller640. The host controller 640 is generally capable of transmittinginstructions to any or all of the elements of the host device 635. Forexample, in one implementation, the host controller 640 includes one ormore software applications loaded on one or more elements of the hostdevice 635. However, in other implementations, as described above, thehost controller 640 may include any of several other programs, machines,and devices operating independently or collectively to control the hostdevice 635.

The host device 635 includes a mail gateway 6350 having a send mailserver 6352 and a read mail server 6354. The send mail server 6352 isconfigured to perform functions relating to transmitting electronicdata. The read mail server 6354 is configured to perform functionsrelating to receiving and necessary electronics data. The mail gateway6350 is in communication with one or more processing servers 6360.

The mail gateway 6350 also is in communication with the storage area6370 and a tandem database 6380. The storage area 6370 includeselectronic content databases 6372, 6374 and attachment database 6376.The tandem database 6380 includes a system of folders that storeselectronic data for subscribers of the host system 610.

Referring to FIG. 7, a sender 702 a, a recipient 702 b, and a host 704interact according to a procedure 700 to transmit electronic data. Theprocedure 700 may be implemented by any type of hardware, software,device, computer, computer system, equipment, component, program,application, code, storage medium, or propagated signal.

Examples of each element of FIG. 7 are broadly described above withrespects to FIGS. 1-6. In particular, the sender 702 a and the recipient702 b typically have attributes comparable to those described withrespect to client devices 120, 220, 320, 420, 520, and 620 and/or clientcontrollers 125, 225, 325, 425, 525, and 625. The host 704 typically hasattributes comparable to those described above with respect to hostdevices 135, 235, 335, 435, 535, and 635 and/or host controllers 140,240, 340, 440, 540, and 640. The sender 702 a, the recipient 702 band/or the host 704 may be directly or indirectly interconnected througha known or described delivery network.

Initially, the sender 702 a transmits electronic data to the host 704(step 705). In one implementation, the sender 702 a aids client system605 transmitting electronic data through a communications link 615 tothe host system 610. In another implementation, the sender 702 a is aprocessing server 6360 within the host system 610. For example, theprocessing server 6360 may be a server arranged to send a welcomemessage to new subscribers to the host system 610.

The host 704 receives the electronic data from the sender (step 710). Inone implementation, the mail gateway 6350 receives the electronic datafrom the client system 605 and/or the processing server 6360. Typically,the mail gateway 6350 will receive electronic content from subscribersthrough a telephone network and will receive electronic content fromnon-subscribers through the Internet.

After the host 704 receives the electronic data from the sender 702 a(step 710), the host 704 determines attributes of the electronic data(step 715). In one implementation, the read mail server 6352 of the mailgateway 6350 determines attributes of the electronic data including theauthor of the electronic data, the recipient(s) of the electronic data,the subject of the electronic data, the date and time of thetransmission, and/or whether the electronic data contains attachments orembedded images.

The host 704 authenticates the electronic data based on one or moreattributes (step 720). Typically, only selected users will be authorizedto transmit authenticated electronic data. For example, operationssecurity personnel may selectively authorize certain employees and/orprocess servers 6360 to transmit authenticated electronic data based oncriteria. Criteria may include the purpose, the process, the security,and/or the internal account of the sender.

After the electronic data has been authenticated (step 720), the host704 designates a level of security for the electronic data (step 725).In one implementation, the authenticated electronic data is designatedas either official or unofficial. In other implementations, however,there may be several different levels of security. Additionally, theelectronic data may be designated as being sent from a particularbusiness partner of the OSP.

The host 704 then appends information to the electronic data indicatingthat the electronic data has been authenticated (step 730). In oneimplementation, bits of information are inserted into the header of theelectronic data. The appended information may correspond to theparticular level of security of the sender 702 a.

Next, the host 704 stores the contents and attributes of the electronicdata (step 735). In one implementation, contents of the electronic dataare stored in the storage area 6360 and the attributes of the electronicdata are stored in the tandem database 6380. More particularly, the bodyof the electronic data is stored in electronic content databases 6362,6364 and any attachments are stored in the attachment database 6366. Inthis example, the body of the electronic data is stored twice to insureavailability of the electronic data body. Due to the typically largesizes of attachments, however, such objects are only stored once toconserve memory space.

The tandem database 6380 includes a system of folders corresponding tothe subscribers of the host system 610. Each folder may have propertiesassigned by the subscriber including, for example, properties forfiltering electronic content from certain sources. As electronic data isreceived, the folder stores the attributes of the electronic dataincluding the location(s) of the electronic data content in the storagearea 6360.

When the recipient 702 b desires to access stored electronic data, therecipient 702 b sends a request to access the electronic data to thehost 704 (step 740). The host 704 receives the request to access theelectronic data from the recipient 702 b (step 745). The host 704 sendsthe appended information to the recipient 702 b (step 750). The appendedinformation may be presented to the recipient with the attributes of theelectronic data and/or the contents of the electronic data.

When presented with the appended information, the recipient 702 brenders the appended information to a user (step 755). The appendedinformation may be rendered as a distinguishable icon in a listing offolder entries and/or a distinguishable chrome (i.e., border) around thecontents of the electronic data in a message. In one implementation, thechrome is distinguishable by being a different color from regularmessages (e.g., unofficial email) and by including words and/or symbolsrelating to its authenticated status.

Referring to FIG. 8, a UI 800 illustrates an example of how the appendedinformation may be rendered. The UI 800 includes an Online Mailboxtemplate 805. The Online Mailbox template 805 includes a New Mail folder810 for displaying attributes of received messages. Such attributesincludes, but are not limited to, the date the message was received, thesender of the message, and the subject of the message.

As shown in FIG. 8, the New Mail folder 810 displays attributes of tworeceived messages. The first message is a product update messagereceived from a particular supplier, and the second message is anofficial message received from an authenticated sender of official mail.The first message is associated with a first icon 815, and the secondmessage is associated with a second icon 820. The first icon 815 and thesecond icon 820 are distinguishable from each other by color and symbol.Namely, the first icon 815 appears as a yellow envelope, and the secondicon 820 appears as a blue envelope including the AOL triangle.

In one implementation, the first icon 815 is a standard icon associatedwith all unofficial messages and the second icon 820 is a special iconassociated only with official messages. In another implementation, theparticular subscriber is authenticated and the first icon 815 isassociated with all messages received from the authenticated supplier.In such an implementation, the first icon 815 is distinguishable fromother special icons associated with authenticated messages (e.g., thesecond icon 820) as well as the standard icon associated withunauthenticated messages.

Referring to FIGS. 9A and 9B, a UI 900A associated with an authenticatedmessage (e.g., official mail) is distinguishable from a UI 900Bassociated with an unauthenticated message (e.g., unofficial mail). TheUI 900A includes an Official AOL Mail template 905A having adistinguishable border 910A. In contrast, the UI 900B includes anUnofficial Mail template 905B having a standard border 910B. As shown,the color of the border 910A (e.g., light blue) differs from the color(e.g., white) of the border 910B. In addition, the border 910A includesan Official AOL Mail seal 915A in the lower left corner of the OfficialAOL Mail template 905A. Such a seal is conspicuously absent from theborder 910B of the Unofficial Mail template 905B.

The general aspects described above may be applied to either an e-mailmessage and/or an instant message. Other implementations are within thescope of the following claims.

1. A method for transmitting electronic data, the method comprising:receiving, at a communications system host, first electronic datatransmitted from a first sender and addressed to an intended recipient,the first electronic data comprising a first electronic mail message;receiving, at the communications system host, second electronic datafrom a second sender and addressed to the intended recipient, the secondelectronic data comprising a second electronic mail message; determiningattributes of at least one of the first electronic data and the secondelectronic data; endorsing the first electronic data or the secondelectronic data based on the determined attributes; modifying one of thefirst electronic data and the second electronic data with endorsementinformation, the endorsement information comprising presentableinformation that visually distinguishes endorsed messages fromnonendorsed messages; and enabling access to the first electronic dataand the second electronic data concurrently with the endorsementinformation that visually distinguishes the first electronic data fromthe second electronic data in a single electronic mail inbox, theelectronic mail inbox configured to generate a separate user interfacethat displays content of electronic data in response to manipulation ofthe first electronic data or the second electronic data, wherein:enabling access comprises presenting the endorsement information to theintended recipient, the endorsement information is capable of beingrendered by the intended recipient as a graphical user interfaceindicative of endorsement, and the graphical user interface includes aborder indicative of endorsement around contents of the first or secondelectronic data.
 2. The method of claim 1 wherein endorsing comprisesidentifying the first or second sender.
 3. The method of claim 2 whereinthe first or second sender is identified by a screen name.
 4. The methodof claim 2 wherein the first or second sender is identified by an IPaddress.
 5. The method of claim 1 wherein endorsing further comprisesdesignating a level of security corresponding to the sender of theelectronic data.
 6. The method of claim 1 wherein endorsing furthercomprises verifying that at least one attribute of the electronic datais an attribute of an authorized sender.
 7. The method of claim 6wherein the attribute comprises a screen name.
 8. The method of claim 6wherein the attribute comprises an IP address.
 9. The method of claim 1wherein endorsing further comprises designating a level of securitycorresponding to the determined attribute.
 10. The method of claim 1further comprising: storing content of the first and second electronicdata in a first storage area of the communications system host; andstoring attributes of the first and second electronic data in a secondstorage area of the communications system host.
 11. The method of claim1 wherein the endorsement information is presented with the determinedattributes.
 12. The method of claim 1 wherein the endorsementinformation is presented with content of the first and second electronicdata.
 13. The method of claim 1 wherein the endorsement information iscapable of being rendered by the intended recipient as an iconindicative of endorsement.
 14. The method of claim 1 wherein modifyingthe electronic data includes enabling a messaging application tovisually distinguish the endorsed messages from the nonendorsedmessages.
 15. The method of claim 14 wherein enabling the messagingapplication to visually distinguish between the endorsed and nonendorsedmessages includes presenting an endorsed icon for an endorsed electronicmail message in an electronic mail inbox that also includes nonendorsedelectronic mail messages.
 16. The method of claim 1 wherein modifyingthe electronic data includes appending endorsement information tooriginally-received electronic data.
 17. The method of claim 1 whereinmodifying the electronic data includes instructing a renderingapplication that the electronic data represents endorsed communications.18. The method of claim 1 wherein modifying the electronic data withendorsement information includes configuring a messaging communicationto reflect endorsement by a messaging provider.
 19. The method of claim1 wherein the first electronic data is endorsed based on the determinedattributes and the first electronic data is modified with endorsementinformation.
 20. The method of claim 1, wherein the first electronicdata is endorsed based on the determined attributes, the secondelectronic data is not endorsed based on the determined attributes, andthe first electronic data is modified with endorsement information. 21.The method of claim 1, wherein the second electronic data is endorsedbased on the determined attributes, the first electronic data is notendorsed based on the determined attributes, and the first electronicdata is modified with endorsement information.
 22. The method of claim1, wherein the first sender and the second sender are the same sender.23. The method of claim 1, wherein the first sender is thecommunications system host, and the first electronic data is endorsedbased on the determined attributes.
 24. The method of claim 1, whereinthe attributes include information associated with electronic data otherthan content of the electronic data.
 25. An apparatus for transmittingelectronic data, the apparatus comprising a host configured to: receive,at a communications system host, first electronic data transmitted froma first sender and addressed to an intended recipient, the firstelectronic data comprising a first electronic mail message; receive, atthe communications system host, second electronic data from a secondsender and addressed to the intended recipient, the second electronicdata comprising a second electronic mail message; determine attributesof at least one of the first electronic data and the second electronicdata; endorse the first electronic data or the second electronic databased on the determined attributes; modify one of the first electronicdata and the second electronic data with endorsement information theendorsement information comprising presentable information that visuallydistinguishes endorsed messages from nonendorsed messages; and enableaccess to the first electronic data and the second electronic dataconcurrently with the endorsement information that visuallydistinguishes the first electronic data from the second electronic datain a single electronic mail inbox, the electronic mail inbox configuredto generate a separate user interface that displays content ofelectronic data in response to manipulation of the first electronic dataor the second electronic data, wherein: the host being configured toenable access comprises the host being configured to present theendorsement information to the intended recipient, the endorsementinformation is capable of being rendered by the intended recipient as agraphical user interface indicative of endorsement, and the graphicaluser interface includes a border indicative of endorsement aroundcontents of the first or second electronic data.
 26. The apparatus ofclaim 25 wherein the first electronic data is endorsed based on thedetermined attributes and the first electronic data is modified withendorsement information.
 27. A computer program, embodied on a storagemedium, comprising instructions for: receiving, at a communicationssystem host, first electronic data transmitted from a sender andaddressed to an intended recipient, the first electronic data comprisinga first electronic mail message; receiving, at a communications systemhost, second electronic data transmitted from a sender and addressed toan intended recipient, the second electronic data comprising an secondelectronic mail message; determine attributes of at least one of thefirst electronic data and the second electronic data; endorsing thefirst electronic data or the second electronic data based on thedetermined attributes; modifying one of the first electronic data andthe second electronic data with endorsement information, the endorsementdata comprising presentable information that visually distinguishesendorsed messages from nonendorsed messages; and enabling access to thefirst electronic data and the second electronic data concurrently withthe endorsement information that visually distinguishes the firstelectronic data from the second electronic data in a single electronicmail inbox, the electronic mail inbox configured to generate a separateuser interface that displays content of electronic data in response tomanipulation of the first electronic data or the second electronic data,wherein: enabling access comprises presenting the endorsementinformation to the intended recipient, the endorsement information iscapable of being rendered by the intended recipient as a graphical userinterface indicative of endorsement, and the graphical user interfaceincludes a border indicative of endorsement around contents of the firstor second electronic data.
 28. The computer program of claim 27 whereinthe first electronic data is endorsed based on the determined attributesand the first electronic data is modified with endorsement infonnation.29. A method for receiving electronic data transmitted from a sender toan intended recipient through a communications system, thecommunications system endorsing the electronic data based on attributesof the electronic data, the method comprising: receiving, from acommunications system host, first electronic data, the first electronicdata comprising a first electronic mail message from a first sender andaddressed to an intended recipient; receiving, from the communicationssystem host, second electronic data, the second electronic datacomprising a second electronic mail message from a second sender andaddressed to the intended recipient; receiving, from the communicationssystem host, endorsement information indicating that one of the firstelectronic data or the second electronic data has been endorsed, theendorsement information comprising presentable information that visuallydistinguishes endorsed messages from nonendorsed messages; andpresenting the first electronic data and the second electronic dataconcurrently with the endorsement information that visuallydistinguishes the first electronic data from the second electronic datain a single electronic mail inbox, the electronic mail inbox configuredto generate a separate user interface that displays content ofelectronic data in response to manipulation of the first electronic dataor the second electronic data, wherein: the endorsement information isrendered by the intended recipient as a graphical user interfaceindicative of endorsement, and the graphical user interface includes aborder indicative of endorsement around contents of electronic data. 30.The method of claim 29 wherein the endorsement information is furtherrendered by the intended recipient as an icon indicative of endorsement.31. The method of claim 29 wherein the endorsement information isrendered with contents of electronic data.
 32. The method of claim 29wherein the endorsement information is rendered with attributes ofelectronic data.
 33. The method of claim 29 wherein the first electronicdata is endorsed based on the determined attributes and the firstelectronic data is modified with endorsement information.
 34. Anapparatus for receiving electronic data transmitted from a sender to anintended recipient through a communications system, the communicationssystem endorsing the electronic data based on attributes of theelectronic data, the apparatus comprising a client configured to:receive, from a communications system host, first electronic data, thefirst electronic data comprising a first electronic mail message from afirst sender and addressed to an intended recipient; receive, from thecommunications system host, second electronic data, the secondelectronic data comprising a second electronic mail message from asecond sender and addressed to the intended recipient; receive, from thecommunications system host, endorsement information indicating that thefirst electronic data or the second electronic data has been endorsed,the endorsement information comprising presentable information thatvisually distinguishes endorsed messages from nonendorsed messages; andpresent the first electronic data and the second electronic dataconcurrently with the endorsement information that visuallydistinguishes the first electronic data from the second electronic datain a single electronic mail inbox, the electronic mail inbox configuredto generate a separate user interface that displays content ofelectronic data in response to manipulation of the first electronic dataor the second electronic data, wherein: the endorsement information isrendered by the intended recipient as a graphical user interfaceindicative of endorsement, and the graphical user interface includes aborder indicative of endorsement around contents of electronic data. 35.The apparatus of claim 34 wherein the first electronic data is endorsedbased on the determined attributes and the first electronic data ismodified with endorsement information.
 36. A computer program embodiedon a storage medium for receiving electronic data transmitted from asender to an intended recipient through a communications system, thecommunications system endorsing the electronic data based on attributesof electronic data, the computer program comprising instructions for:receiving, from a communications system host, first electronic data, thefirst electronic data comprising a first electronic mail message from afirst sender and addressed to an intended recipient; receiving, from thecommunications system host, second electronic data, the secondelectronic data comprising a second electronic mail message from asecond sender and addressed to the intended recipient; receiving, fromthe communications system host, endorsement information indicating thatthe first electronic data or the second electronic data has beenendorsed, the endorsement information comprising presentable informationthat visually distinguishes endorsed messages from nonendorsed messages;and presenting the first electronic data and the second electronic dataconcurrently with the endorsement information that visuallydistinguishes the first electronic data from the second electronic datain a single electronic mail inbox, the electronic mail inbox configuredto generate a separate user interface that displays content ofelectronic data in response to manipulation of the first electronic dataor the second electronic data, wherein: the endorsement information isrendered by the intended recipient as a graphical user interfaceindicative of endorsement, and the graphical user interface includes aborder indicative of endorsement around contents of electronic data. 37.The computer program of claim 36 wherein the first electronic data isendorsed based on the determined attributes and the first electronicdata is modified with endorsement information.
 38. A computer programembodied on a storage medium, the computer program includinginstructions that, when executed, display a graphical user interface forrendering information associated with electronic data transmitted from asender to an intended recipient, the graphical user interface comprisingan electronic mail inbox configured to: receive first receivedelectronic data comprising an endorsed electronic mail message, secondreceived electronic data comprising a nonendorsed electronic mailmessage, and endorsement information associated with one of the firstelectronic data and the second electronic data, the endorsementinformation comprising presentable information that visuallydistinguishes endorsed messages from nonendorsed messages; concurrentlypresent the first received electronic data and the second receivedelectronic data; receive a selection of the first electronic data; andpresent content of the selected electronic data in a separate graphicaluser interface, the separate graphical user interface comprising a bodyof an electronic mail message and a border around the content of theselected electronic data indicating that the selected electronic data isendorsed.
 39. The method of claim 38 wherein presenting endorsementinformation includes presenting an endorsed envelope, an endorsed seal,or an endorsed border for the endorsed electronic mail message that isdifferentiated from other envelopes, seals, or borders used innonendorsed electronic mail messages.
 40. An apparatus comprising: astorage medium coupled to one or more computers and storing instructionsthat, when executed, display a graphical user interface for renderinginformation associated with electronic data transmitted from a sender toan intended recipient, the graphical user interface comprising anelectronic mail inbox configured to: receive first received electronicdata comprising an endorsed electronic mail message, second receivedelectronic data comprising a nonendorsed electronic mail message, andendorsement information associated with one of the first electronic dataand the second electronic data, the endorsement information comprisingpresentable information that visually distinguishes endorsed messagesfrom nonendorsed messages; concurrently present the first receivedelectronic data and the second received electronic data; receive aselection of the first electronic data; and present content of theselected electronic data in a separate graphical user interface, theseparate graphical user interface comprising a body of an electronicmail message and a border around the content of the selected electronicdata indicating that the selected electronic data is endorsed.
 41. Amethod of presenting electronic data, the method comprising: displaying,at a display monitor of a client system, a graphical user interface forrendering information associated with electronic data transmitted from asender to an intended recipient, the graphical user interface comprisingan electronic mail inbox configured to: received first receivedelectronic data comprising an endorsed electronic mail message, secondreceived electronic data comprising a nonendorsed electronic mailmessage, and endorsement information associated with one of the firstelectronic data and the second electronic data, the endorsementinformation comprising presentable information that visuallydistinguishes endorsed messages from nonendorsed messages; concurrentlypresent the first received electronic data and the second receivedelectronic data; receive a selection of the first electronic data; andpresent content of the selected electronic data in a separate graphicaluser interface, the separate graphical user interface comprising a bodyof an electronic mail message and a border around the content of theselected electronic data indicating that the selected electronic data isendorsed.